| Workflow is a supporting technology to realize business process integration, increase operational efficiency and flexibility. And computer science, automation science, management science and other disciplines are all concerned with this hot topic. According to a set of rules, documents or tasks are passed and processed among different executors to achieve all or part of automated business processes and efficiently coordination of various resources. But modern enterprise information resources have the characteristics of distributed, heterogeneous, loosly coupled and so on, so the era of centralized information processing has passed. Workflow system has to develop into the distributed direction to adapt to heterogeneous and distributed environment. The mobile agent technology, which is a hybrid of distributed computing technology and the agent technology, can use the characteristic of autonomous mobility in the network to realize the interaction between the remote platform, and asynchronously run on different computing platforms to complete specific tasks in high speed on behalf of it's user. So workflow constructed based on mobile agent technology can solve the deficiencies in performance and application to a certain extent.The mobile instance's mobility constructed based on the mobile agent paradigm could improve the performance of the workflow management system, but at the same time, many security risks bring a lot of difficulties for the safe application of the workflow system. The security issues in the migrating workflow system include migrating instance's security issues and the workplace's security issues. The former is more prominent, because the workplace can master the migrating instance's code and data. Therefore, a key step for the migrating workflow walk into practice is to construct a new security mechanism to improve the overall system security.On the basis of the above research background, this thesis discussed the secure problems of codes of migrating instance, and presented a secure mechanism aimed at guaranteeing the security of the migrating instance's codes. First, dividing the codes into different blocks according to certain principles, and the migrating instance will percept whether the block MI will implement soon has some changes. If so, MI further determines whether such changes dangerous. MI will then take measures to amend the codes, and obfuscate the amended codes to avoid being attacked again, if the changes are dangerous. At the same time, in order to enhance the effectiveness of this mechanism, this thesis also designed a time verification method to detect whether work place has attacked the migrating instance, which can help the migrating instance determine the credibility of the outcomes of service.This paper outlined the research background and basic knowledge, the model structure of the mechanism and the process of the mechanism, especially the Perceive Module, the Response Module and the time verification method were described followed. Finally, the implement of the mechanism is presented, and some related simulations are also carried out. |
PDF Full Text Request